7.5

CVE-2022-29874

EPSS 0.31%
Published 20.05.2022 13:15:16
Last modified 21.11.2024 06:59:52
Source productcert@siemens.com
Teams watchlist Login
Open Login

A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00). Affected devices do not encrypt web traffic with clients but communicate in cleartext via HTTP. This could allow an unauthenticated attacker to capture the traffic and interfere with the functionality of the device.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Siemens ≫ 7kg8500-0aa00-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8500-0aa00-0aa0 Version-

Siemens ≫ 7kg8500-0aa00-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8500-0aa00-2aa0 Version-

Siemens ≫ 7kg8500-0aa10-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8500-0aa10-0aa0 Version-

Siemens ≫ 7kg8500-0aa10-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8500-0aa10-2aa0 Version-

Siemens ≫ 7kg8500-0aa30-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8500-0aa30-0aa0 Version-

Siemens ≫ 7kg8500-0aa30-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8500-0aa30-2aa0 Version-

Siemens ≫ 7kg8501-0aa01-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa01-0aa0 Version-

Siemens ≫ 7kg8501-0aa01-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa01-2aa0 Version-

Siemens ≫ 7kg8501-0aa02-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa02-0aa0 Version-

Siemens ≫ 7kg8501-0aa02-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa02-2aa0 Version-

Siemens ≫ 7kg8501-0aa11-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa11-0aa0 Version-

Siemens ≫ 7kg8501-0aa11-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa11-2aa0 Version-

Siemens ≫ 7kg8501-0aa12-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa12-0aa0 Version-

Siemens ≫ 7kg8501-0aa12-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa12-2aa0 Version-

Siemens ≫ 7kg8501-0aa31-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa31-0aa0 Version-

Siemens ≫ 7kg8501-0aa31-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa31-2aa0 Version-

Siemens ≫ 7kg8501-0aa32-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa32-0aa0 Version-

Siemens ≫ 7kg8501-0aa32-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8501-0aa32-2aa0 Version-

Siemens ≫ 7kg8550-0aa00-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8550-0aa00-0aa0 Version-

Siemens ≫ 7kg8550-0aa00-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8550-0aa00-2aa0 Version-

Siemens ≫ 7kg8550-0aa10-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8550-0aa10-0aa0 Version-

Siemens ≫ 7kg8550-0aa10-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8550-0aa10-2aa0 Version-

Siemens ≫ 7kg8550-0aa30-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8550-0aa30-0aa0 Version-

Siemens ≫ 7kg8550-0aa30-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8550-0aa30-2aa0 Version-

Siemens ≫ 7kg8551-0aa01-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa01-0aa0 Version-

Siemens ≫ 7kg8551-0aa01-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa01-2aa0 Version-

Siemens ≫ 7kg8551-0aa02-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa02-0aa0 Version-

Siemens ≫ 7kg8551-0aa02-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa02-2aa0 Version-

Siemens ≫ 7kg8551-0aa11-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa11-0aa0 Version-

Siemens ≫ 7kg8551-0aa11-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa11-2aa0 Version-

Siemens ≫ 7kg8551-0aa12-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa12-0aa0 Version-

Siemens ≫ 7kg8551-0aa12-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa12-2aa0 Version-

Siemens ≫ 7kg8551-0aa31-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa31-0aa0 Version-

Siemens ≫ 7kg8551-0aa31-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa31-2aa0 Version-

Siemens ≫ 7kg8551-0aa32-0aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa32-0aa0 Version-

Siemens ≫ 7kg8551-0aa32-2aa0 Firmware Version < 3.00

Siemens ≫ 7kg8551-0aa32-2aa0 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.31%	0.535

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

CWE-319 Cleartext Transmission of Sensitive Information

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

https://cert-portal.siemens.com/productcert/pdf/ssa-165073.pdf

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-29874

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-29874

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-29874

EUVD